exploitDog

CVE-2008-5189

Опубликовано: 21 нояб. 2008

Источник: ubuntu

Приоритет: low

CVSS2: 5

Описание

CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL to the redirect_to function.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected
gutsy	ignored	end of life, was needs-triage
hardy	ignored	end of life
intrepid	not-affected	2.1.0-4
jaunty	not-affected
karmic	not-affected
lucid	not-affected
maverick	not-affected
natty	not-affected

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2008-5189

5 Medium

CVSS2

Связанные уязвимости

CVE-2008-5189

redhat

около 17 лет назад

CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL to the redirect_to function.

CVE-2008-5189

nvd

около 17 лет назад

CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL to the redirect_to function.

CVE-2008-5189

debian

около 17 лет назад

CRLF injection vulnerability in Ruby on Rails before 2.0.5 allows remo ...

GHSA-jmgf-p46x-982h

github

около 8 лет назад

rails is vulnerable to CRLF injection

5 Medium

CVSS2